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Method and system for managing digital rights 



The invention relates to a method of managing digital rights, and in particular 
to a method comprising the steps of transmitting a request for a digital right to a server and 
receiving a digital right jfrom the server. 

The invention further relates to a computer program enabling a programmable 
. 5 device to carry out a method of managing digital rights. 

The invention further relates to a system for managing digital rights, 
comprising a client which is able to carry out a method of managing digital rights, and a 
server. 

The invention further relates to an electronic device which is able to carry out 
10 a method of managing digital rights. 

An example of such a method is known from US 6,330,670. The known 
method comprises transmittmg, to a server, a request for a content item and for a digital right 
to the content item, e.g. a license and/or a content decryption key. The known method is 
executed by a digital rights management operating system (DRMOS). In one embodiment of 
15 the known method, it comprises receiving an encrypted content item, using secure socket 
layer services and receiving a license placing restrictions on the use of the content item. In 
this embodiment, the DRMOS writes the encrypted content item to permanent storage and 
securely stores the session key for later use. The known method provides a certain level of 
security by includmg appropriate certificates/identities for a CPU, a DRMOS, and an 
20 application in the request. The server will only transmit the content item and the license if it 
trusts the CPU, the DRMOS, and the applicatioiL 

Alfliough the DRMOS does protect digital rights from being copied by 
unauthorized operating system components and unauthorized applications, it does not protect 
digital rights from being copied by unauthorized hardware components, e.g. snooping devices 
25 monitoring communication between a CPU and a memory of an electronic device. 

Unauthorized copying of a digital right is especially problematic when the digital right 
provides access to multiple instances of a content item, e.g. as a result of broadcasting the 
content item. 



wo 2004/092931 



PCT/IB2004/050429 



2 

It is a first object of the invention to provide a method of the type described in 
the opening paragraph, by v^^hich protection against unauthorized hardware components is 
enhanced. 

It is a second object of the invention to provide a system of the type described 
5 in the opening paragraph, M^hich is protected better against unauthorized liardware 
components. 

It is a third object of the invention to provide an electronic device of the type 
described in the opening paragraph, which is protected better against unauthorized hardware 
components. 

According to the mvention, the first object is realized in that the method 
comprises the steps of: transmitting, to a server, a request for a digital right to an encrypted 
content item, the request comprising a circuit identifier identifying an integrated circuit and a 
content identifier identifying the encrypted content item; receiving an encrypted digital right 
from the server, the encrypted digital right being encrypted by using a public key associated 
with the integrated circuit; and instructing the integrated circuit to decrypt the encrypted 
digital right by using a private key associated with the integrated circuit, the private key 
being stored m the integrated circuit, and to store the digital right in the integrated circuit. 

To ensure protection against unauthorized hardware components, it is 
important to use tamperproof hardware components in vuhierable devices and a suitable 
encryption mechanism between tamperproof hardware components or between a tamperproof 
hardware component and a trusted device. An integrated circuit may be considered 
tamperproof. It is extremely difficult to monitor communication between a processor and a 
memory located in a single integrated circuit, and it is also extremely difficult to continue 
using an integrated circuit if one were to succeed in reading the memory of the integrated 
circuit. A suitable encryption mechanism is required for communication between an 
integrated circuit and other components or devices. By encrypting a digital right with a public 
key associated with an integrated circuit and storing the matching private key associated with 
the integrated circuit only in the integrated circuit itself, it can be ensured that only the 
mtegrated circuit is able to decrypt the digital right 

A digital right may comprise a license and/or a content decryption key. For 
example, a license may specify how many times a content item may be reproduced or copied 
and/or during which period a content item may be reproduced. A content decryption key may 
be used to decrypt the content item or a part of tiie content item. A digital right may comprise 
a plurality of content decryption keys. Alternatively, a digital right may comprise a small 
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software application which is able to generate content decryption keys. Advantageously, the 
circuit identifier may be hidden in the digital right, thereby creating multiple digital rights to 
the same content item. In the unlikely case that a digital right or a private key is extracted 
from an integrated circuit, the server may be able to refuse transmittmg another digital right if 
5 the request contains the circuit identifier hidden in the compromised digital right. 

An embodiment of the method according to the invention further comprises 
the step of receiving the content identifier identifying the encrypted content item, using a 
receiver. For example, a content distributor may broadcast the content identifier together with 
the encrypted content item identified by the content identifier. Alternatively, a mobile phone 

1 0 may receive, for example, a content identifier fi-om a decoder in a set-top box, DVD player, 
or television. Broadcastmg an encrypted content item will generally result in a distribution of 
multiple instances of the content item, wherein a digital right to the content item provides 
access to all the multiple instances of tiie content item. It is then especially important to 
prevent illegal distribution of the digital right. 

1 ^ The method may further comprise the step of retrieving the content identifier 

identifying the encrypted content item from a storage means storuig the encrypted content 
item. The content identifier may be stored, for example, on an optical medium, a magnetic 
medium, or a solid-state memory. The content identifier may be stored with the content item. 
This embodiment may be performed, for example, by a mobile phone contaming a small 

20 form factor optical disc reader such as a Portable Blue reader. If content is distributed to 
multiple users on multiple optical discs, the encryption of each optical disc may either be 
identical or different. If the encryption of each disc is identical, preventing distribution of a 
digital right to a content item on the discs is especially important. Encrypting each disc 
differently in effect creates multiple encrypted content items. 

25 The method may further comprise the step of re-encrypting the digital right 

and copymg the re-encrypted digital right to a storage means. Copying a digital right to a 
content item fi-om a device performing the method to an external storage means or to an 
mtemal storage means containing a removable medium allows reproduction of the content 
item on another device. To ensure protection against unauthorized software or hardware 

30 components, re-encrypting the digital right and copying the re-enciypted digital right to a 
storage means is advisable. If the license does not allow more than one copy per license, the 
digital right has to be removed from the device performing the method after copying. An 
integrated circuit in an optical disc writer may also be used as the integrated circuit of the 
method. The mtegrated circuit in the optical disc writer, e.g. a Portable Blue writer, may then 
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be used as the integrated circuit of the method as well as re-encrypt the digital right using a 
secret key that is only known to authorized integrated circuits. This provides a high level of 
security. 

The method may further comprise the step of obtaining a content decryption 
5 key for decrypting at least part of the encrypted content item from the integrated circuit, the 
content decryption key being computed by the integrated circuit, using the digital right stored 
in the integrated circuit. This embodiment may be sufficiently secure if the content item is 
broadcast and relatively quickly loses value, e.g. a sports broadcast. By using different 
content decryption keys for different parts of a content item or for different content items, 
10 parts or content items that have not yet been broadcast cannot be accessed by using a 
comprised content decrj^tion key. 

The method may further comprise the step of transmitting the content 
decryption key to a content decrypting means. For example, this embodiment may enable a 
user of a mobile phone to have a set-top box comprising the content decryption means 
1 5 reproduce a content item without the need for the user to insert a smart card into the set-top 
box. 

The method may further comprise the step of obtaining at least a part of the 
encrypted content item in a decrypted form from the integrated circuit, decryption of the 
encrypted content item being performed by the integrated circuit, using the digital right 

20 stored in the integrated circuit This embodiment protects a content decryption key from 

being compromised. The decrypted content item may still be recorded without permission by 
using unauthorized hardware components, but the decrypted content item is generally much 
larger than the content decryption key and therefore more difficult to distribute. The 
integrated circuit may also add a watermark that includes the circuit identifier to the 

25 decrypted content item so as to be able to detect whether and where the content item was 
illegally recorded. 

According to the invention, the second object is realized in that the system 
comprises: a server which is able to receive, from a client, a request for a digital right to an 
enciypted content item, the request comprising a circuit identifier identifying an integrated 
30 circuit and a content identifier identifying the encrypted content item, to perform one of 

creating and retrieving the digital right; to retrieve a public key associated with the integrated 
circuit from a server storage means, to encrypt the digital right by using the public key, and 
to transmit the digital right in an encrypted form to the client; and a client which is able to 
transmit, to the server, the request for the digital right, to receive an encrypted digital right 
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from the server, and to instruct the integrated cu-cuit to decrypt the digital right by usmg a 
private key associated with the integrated circuit, the private key being stored in the 
integrated circuit, and to store the digital right in the integrated circuit. 

The server may retrieve, for example, the digital right to the content item if the 
5 digital right is identical for all users. The digital right may be retrieved, for example, from an 
internal storage means or from a further server. The further server may be owned by a trusted 
third party. The server may alternatively create the digital right to the content item if the 
digital right should be different for different integrated circuits. The server may be able to 
store the public key associated with the integrated circuit itself or it may be able to retrieve 

10 the public key from another trusted system. For opthnal protection, the public key may be 
retrieved directly from a server owned by a party which is able to verify that the public key is 
associated with the private key, for example, a party responsible for generating both the 
private key and the public key. Enabling the server to retrieve the public key, e.g. from a 
certification authority such as Verisign, instead of allowmg ttie mtegrated circuit to provide a 

15 public key certified by a certification authority is advantageous, because it avoids the 

problems that may occur when a certificate is compromised, e.g. stolen. An unauthorized 
party might use the compromised certificate to certify its own public key. 

According to the invention, the third object is realized in that the electronic 
device comprises: a transmitter which is able to transmit a first signal; a receiver which is 

20 able to receive a second signal; an integrated circuit which is able to store a private key 

associated with the integrated circuit, to decrypt an encrypted digital right using the private 
key, and to store a digital right; and a control unit which is able to instruct the transmitter to 
transmit, in a first signal, a request for a digital right to an encrypted content item, the request 
comprising a circuit identifier identifying the integrated circuit and a content identifier 

25 identifying the encrypted content item, to use the receiver to receive, in a second signal, an 
encrypted digital right, the encrypted digital right being encrypted by using a public key 
associated with the integrated circuit, and to instruct the mtegrated circuit to decrypt the 
encrypted digital right and store the digital right. 

In an embodhnent, the electronic device comprises a mobile phone. Modem 

30 mobile phones can increasingly better reproduce content, e.g. MP3 music and MPEG-4 
video. With the prospect of distributmg small form factor optical discs like Portable Blue 
discs, whose digital rights may.be bought on-line, the need for management of digital rights 
on a mobile phone has increased. 
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The electronic device may further comprise a non-volatile memory for storing 
the digital right in an encrypted form. If it is not possible or not advantageous to store the 
digital right directly on a permanent storage means, e.g. an optical disc writer containing a 
writable optical disc, it may be advantageous to store the digital right in a non- volatile 
5 memory of the electronic device. For reasons of security, the digital right should be stored in 
an encrypted form. It may not be advantageous to store the digital right du-ectly on a 
permanent storage means, when this consumes relatively much power, when the storage 
means does not contain a standardized key-locker, or when the key-locker cannot be written 
to. The integrated circuit may also comprise a non-volatile memory, but this may not be large 
10 enough to store enou^ digital rights. 



These and other aspects of the method, system, and electronic device of the 
invention will be fiirth^ elucidated and described with reference to tiie drawings, in which: 
15 Fig. 1 is a flow chart of the method; 

Fig.2 is a flow chart of a first embodiment of the method; 
Fig.3 is a flow chart of a second embodiment of the method; 
. Fig.4 is a diagram of an embodiment of the system; 
Fig.5 is a block diagram of the electronic device; 
20 Corresponding elements within the drawings are identified by the same 

reference numerals. 



The method of the invention, see Fig. 1, comprises three steps. Step 1 
25 comprises transmitting, to a server, a request for a digital right to an encrypted content item, 
the request comprising a circuit identifier identifying an integrated circuit and a content 
identifier identifying the enciypted content item. Step 3 comprises receiving an encrypted 
digital right fix)m the server, the encrypted digital right being encrypted by using a public key 
associated with the integrated circuit. Step 5 comprises instructing the integrated circuit to 
30 decrypt the encrypted digital right by using a private key associated with the integrated 

circuit, the private key being stored in the integrated circuit, and to store the digital right in 
the integrated circuit. The integrated circuit may be a relatively simple microchip, as present 
on most smart cards, or a powerful microprocessor. Step 5 may be performed, for example. 
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directly after step 3 or just before a subsequent step. In the latter case, the enciypted digital 
right is temporarily stored elsewhere, e.g. in a non-volatile memory. 

The method may further comprise step 7 and/or step 9. Step 7 comprises 
obtaming a content decryption key for decrypting at least part of the enciypted content item 
5 from the mtegrated circuit, the content deco'ption key being computed by the integrated 
circuit, using the digital right stored in the integrated circuit. A content decryption key may 
enable decryption of a part of the content item or of the entire content item. Step 9 comprises 
obtaming at least a part of the enciypted content item in a decrypted fonn from the integrated 
circuit, decryption of the enciypted content item being performed by the integrated circuit, 
1 0 using the digital right stored in ttie integrated circuit 

The first embodiment of the method, see Fig. 2. comprises step 21 of receivmg 
the content identifier identifying the encrypted content item, using a receiver. In this 
embodiment, the content identifier is received ftem a content decrypting means, for example, 
a decoder embedded in a set-top box or DVD player. The receiver may be, for example, a 
radio frequency receiver. The first embodiment further comprises step I transmitting, to a 
server, a request for a digital right to an encrypted content item, step 3 receiving an aicrypted 
digital right from the server, and step 5 instructing the integrated cin:uit to decrypt the 
encrypted digital right by usmg a private key associated with the integrated circuit. The first 
embodiment also comprises step 7 obtaining a content decryption key for decrypting at least 
part of the encrypted content item from the integrated circuit, the content decryption key 
being computed by the mtegrated circuit, using the digital right stored in the mtegrated 
circuit AdditionaUy. the first embodiment of the method comprises step 23 transmitting the 
content decryption key to flie content decrypting means. 

The second embodiment of the method, see Fig.3, comprises step 41 retrieving 
the content identifier identifying the encrypted content item from a storage means storing the 
encrypted content item. The storage means may be. for example, an optical disc reader 
containing an optical disc, a magnetic storage means. e.g. a hard disk, or a solid-state 
memory. e.g. MRAM. The second embodiment fiirther comprises step 1 transmitting, to a 
server, a request for a digital right to an enciypted content item, step 3 raceiving an encrypted 
digital right from the server, and step 5 instructing the mtegrated circuit to decrypt the 
enciypted digital right by using a private key associated writh the integrated circuit 

The second embodunent of the method also comprises step 9 obtaining at least 
a part of the encrypted content item in a decrypted form from the mtegrated circuit, 
decryption of the encrypted content item being performed by the integrated cuxsult. usmg the 



20 
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digital right stored in the integrated circuit. The integrated circuit may comprise, for example, 
a digital signal processor optimized for MPEG-2 or MPEG'4 decoding. The at least part of 
the content may be obtained, for example, with a request comprising the content identifier. 
Alternatively, the content identifier may be communicated to the integrated circuit before any 
5 part of the content item is obtained. Additionally, the second embodiment comprises step 43 
re-encrypting the digital right and copying the re-encrypted digital right to a storage means. 
This is possible if the storage means is writable, for example, if it comprises an optical disc 
writer containing a writable optical disc. The optical disc may contain a standardized key- 
locker in which the digital right may be securely stored. 

10 The embodiment of the system of the invention, see Fig.4, comprises a server 

61 and a client 63. The server 61 is able to receive, from a client 63, a request for a digital 
right to an encrypted content item, the request comprising a circuit identifier identifying an 
integrated circuit embedded in the client 63 and a content identifier identifying the encrypted 
content item. The server 61 is further able to perform one of creating and retrieving the 

15 digital right and to retrieve a public key associated with the integrated circuit from a server 
storage means. The server 61 is also able to encrjrpt the digital right by using the public key 
and to transmit the digital right in an encrypted form to the client 63. In Fig. 4, the server 61 
is a computer connected to the Internet. The client 63 is able to transmit, to the server 61, the 
request for the digital right. The client 63 is further able to receive an encrypted digital right 

20 from the server 6 1 . The client 63 is also able to instruct the integrated circuit to decrypt the 
digital right by using a private key associated with the integrated circuit, the private key 
being stored in the integrated circuit, and to store the digital right in the integrated circuit. 

In Fig.4, the client 63 is a mobile phone which is able to conmiunicate with a 
content decrypting means embedded in another device 65, e.g. in a TV. In tiiis embodiment, 

25 the client 63 transmits to and receives fi*om a base station 67 of a wireless network, e.g. a 
UMTS network or a wireless LAN. The server 61 transmits and receives through a wired 
network. Alternatively, the client 63 may be, for example, a set-top box, a DVD player, a TV, 
or an external decoder and the client 63 and/or the server 61 may communicate by using any 
other network technology. The client 63 and the server 61 may conununicate via a bridge 

30 device. The client 63, e.g. a set-top box, may communicate, for example, witii tiie server 61 
via a mobile telephone. The client 63 and the mobile telephone may conmfiunicate, for 
example, by using Bluetooth while the mobile telephone and the server 61 may communicate 
by using UMTS. 
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The electronic device 81 of the invention, see Fig. 5, comprises a transmitter 
83, a receiver 85, an integrated circuit 87, and a control unit 89. The transmitter 83 is able to 
transmit a first signal. The receiver 85 is able to receive a second signal. The signal may be, 
for example, a radio signal, an optical signal, or an electric signal. The transmitter 83 and the 
5 receiver 85 may be the same physical component, e.g. a Radio Frequency transceiver. The 
transmitter 83 and the receiver 85 may be able to communicate with a base station of a 
wireless network, using an antenna 91 . The antenna 91 may be mtemal or external. The 
integrated circuit 87 is able to store a private key associated with the integrated circuit 87, to 
decrypt an encrypted digital right by usmg the private key; and to store a digital right The 

10 integrated circuit 87 may be, for example, a powerful microprocessor or a relatively simple 
microchip as found on smart cards. The control unit 89 is able to instruct the transmitter 83 to 
transmit, in a first signal, a request for a digital right to an encrypted content item, the request 
comprising a circuit identifier identifying the integrated curcuit 87 and a content identifier 
identifying the encrypted content item. The control unit 89 is further able to use the receiver 

15 85 to receive, in a second signal, an encrypted digital right, the encrypted digital right being 
encrypted by using a public key associated with the integrated circuit 87. The control unit 89 
is also able to instruct the integrated circuit 87 to decrypt the encrypted digital right and store 
the digital right in the circuit's memory. The control unit 89 may be, for example, a 
microprocessor. The control unit 89 and the integrated circuit 87 may be the same physical 

20 component. The integrated circuit 87 comprises a writable memory for storing the digital 
right The writable memory may be volatile, e.g. a RAM or non- volatile, e.g. a MRAM or 
EEPROM. 

The electronic device 81 may comprise a mobile phone. Alternatively, the 
electronic device 81 may comprise a TV, a set-top box, or a DVD player. The electronic 

25 device 8 1 may fiirther comprise a non- volatile memory 93 for storing the digital right in an 
encrypted form. The non-volatile memory 93 may be, for example, a MRAM or a Flash 
memory. The non-volatile memory 93 may be used to store encrypted digital rights for a 
longer period of tune. The integrated circuit 87 may use, for example, a secret password to 
encrypt the digital rights or it may use its own public key. The electronic device 91 may 

30 comprise an optical disc writer 95, e.g. a Portable Blue writer. The optical disc writer 91 may 
use the integrated circuit 87 for storing the digital rights on an optical disc. 

While the invention has been described in connection with preferred 
embodiments, it will be understood that modifications thereof within the principles outlmed 
above wiU be evident to those skilled in the art, and thus the invention is not limited to the 
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preferred embodiments but is intended to encompass such modifications. The invention 
resides in each and every novel characteristic feature and each and every combination of 
characteristic features. Reference numerals in the claims do not limit their protective scope. 
Use of the verb *to comprise" and its conjugations does not exclude the presence of elements 
5 other than those stated in the claims. Use of the article "a" or "an" preceding an element does 
not exclude the presence of a plurality of such elements. 

As will be apparent to a person skilled in the art, 'means' are meant to include 
any hardware (such as separate circuits or electronic elements) or software (such as programs 
or parts of programs) which perform in operation or are designed to perform a specified 

1 0 function, be it solely or in conjunction with other functions, be it in isolation or in co- 
operation with other elements. The invention can be implemented by means of hardware 
comprising several distinct elements, and by means of a suitably programmed computer. In 
the apparatus claim enumerating several means, several of these means can be embodied by 
one and the same item of hardware. 'Computer program' is to be imderstood to mean any 

15 software product stored on a computer-readable medium, such as a floppy disk, 

downloadable via a network, such as the Internet, or marketable in any other manner. 



